Is it a standalone application or a distributed one?
I don't know how it to say.
it's a little scheme:
If it is a standalone, you might have to build your own authentication layer. If it is distributed, you might be able to piggy back on some existing framework i.e. server side authentication.
Which of them support encryption of password that sent throught the network?
And another JAAS it's only for web applications?